Logging users in

Hey,I'm new to the last.fm API. I've been playing around for a few users now and I wondered how can I let users skip the 'allow application' once they allowed it.So the first time they are redirected to the last.fm/auth url to grant my application access. When they come back another time, I just want to log them in without the hassle of going to last.fm/auth again.

It's a web application, using PHP and cURL.The documentation says that the session keys generated are valid forever...

The solution is more the second one. If the cookie expires OR the user cleans all his cookies, then he/she would have to log in again.

The better solution could be to have a database-backed session storage on the server side. The client side then only gets an identifier cookie (session cookie from your server). Then on the server side you could use that identifier to load arbitary information about that user, like a session key, a username, whatsoever.